Jiglu 16.0.1 is now available and recommended for immediate installation. This is a security and bug fix release with the following changes:
- Critical security fix for CVE-2023-50164 which could allow an attacker to access files and potentially execute code, although they would require an activated account in Jiglu to exploit this.
- Improvements to processing of non-delivery notifications, handling some cases from outlook.com / Microsoft-hosted Exchange and Mimecast that previously needed manual intervention.
- Fix for issues with using mentions in the HTML editor and an upgrade to the latest version.
- Upgrade of third-party libraries to their latest recommended versions.
Installation help can be found at https://support.jiglu.com/spaces/installation/.